Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/18F314CC03BA11EFA363E442017001B1.roa
File: 18F314CC03BA11EFA363E442017001B1.roa (raw, json)
Hash identifier: zpVG8PnZugODg3d53wKyidNhCpmCyN5gzsP/0/AMopc=
Subject key identifier: 7E:BF:B6:90:0B:17:41:74:49:A6:5D:A5:4F:29:55:CE:19:82:68:C0
Certificate issuer: /CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Certificate serial: 020F
Authority key identifier: D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/18F314CC03BA11EFA363E442017001B1.roa
Signing time: Fri 26 Apr 2024 10:45:29 +0000
ROA not before: Fri 26 Apr 2024 10:45:26 +0000
ROA not after: Thu 30 Apr 2043 10:45:26 +0000
asID: 30988
IP address blocks: 41.73.154.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.mft
rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 527 (0x20f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Validity
Not Before: Apr 26 10:45:26 2024 GMT
Not After : Apr 30 10:45:26 2043 GMT
Subject: CN=662b85c9-1154
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:dd:a3:8c:15:15:ec:f1:6a:ff:02:03:49:06:
be:0f:08:bc:72:40:8b:cf:4a:23:32:aa:18:1f:fb:
84:c7:bb:bc:b2:99:a3:ff:4b:b7:3c:73:74:2f:04:
7b:19:6d:cd:00:85:3f:11:27:f3:30:1e:81:ed:68:
ef:fa:3d:1e:78:94:a6:a7:f6:1f:40:e5:24:51:b8:
76:d5:88:89:13:29:be:d4:d2:8f:2d:9c:f3:b9:3b:
29:23:9a:27:46:e6:33:cb:6a:da:77:e9:a9:06:82:
dc:7a:2c:c9:6a:85:d4:2a:3c:fb:34:01:80:c5:d8:
c5:bc:47:6c:45:70:36:b1:fa:fb:a9:05:8f:0f:71:
a2:8d:2c:29:f4:a6:6e:a3:00:e3:6b:0d:68:fb:00:
0d:d6:ef:47:07:66:6d:53:4b:f6:49:3b:1f:f5:2e:
80:07:35:ba:ad:c2:17:f1:b0:9c:19:a1:cb:38:67:
f3:9c:bc:b3:37:de:93:eb:1a:d0:f9:fd:fd:22:51:
07:8e:5a:40:a4:80:69:13:a2:a5:83:24:e2:f5:e0:
70:68:c5:6b:52:73:ad:19:61:3d:4a:11:bb:84:28:
6e:f3:f2:91:dc:84:34:8b:57:a4:e4:f8:3c:09:54:
f6:b5:eb:26:04:7f:3e:e9:62:8f:a4:5d:b9:bd:02:
bf:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:BF:B6:90:0B:17:41:74:49:A6:5D:A5:4F:29:55:CE:19:82:68:C0
X509v3 Authority Key Identifier:
keyid:D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/18F314CC03BA11EFA363E442017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.73.154.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:98:90:39:9d:26:d0:73:e9:4f:1b:4d:ea:d1:8b:dd:4a:97:
d3:a0:16:c5:09:ff:d3:74:65:c5:70:97:01:ca:80:91:f3:96:
9a:f5:4c:a6:29:6a:e8:d4:de:ff:fb:e0:07:1f:13:f0:8f:20:
fb:a2:9b:ec:10:59:63:55:fd:7f:9b:d1:6c:75:a8:f5:78:38:
7a:17:82:f4:40:73:92:f4:fb:79:82:1b:45:63:3c:2c:82:91:
ec:1a:1d:0a:de:a3:d6:c3:6c:4b:c5:a1:2f:82:8c:16:54:45:
ea:6e:83:cd:56:bc:fe:9c:c0:65:89:c1:50:64:16:3b:c6:77:
6a:a3:17:8b:b3:61:ef:77:68:cc:fe:3e:8e:3c:44:12:91:70:
74:f4:db:95:c4:43:07:94:42:66:29:7b:55:19:af:a4:25:36:
6d:e7:8e:36:ef:40:6e:04:17:10:96:2a:25:7f:c2:11:ec:d9:
bd:ec:1f:08:6f:7f:f8:fa:94:d7:3b:0c:ee:69:16:58:d4:a4:
75:8b:64:f4:45:25:e4:98:2b:a4:46:da:e3:c3:65:dc:8d:56:
0d:5b:ab:5b:6b:2a:16:8a:a9:02:9b:f2:ef:70:d6:9f:0e:4e:
a3:07:fe:55:a0:12:30:43:17:7a:fd:5b:7c:b3:8a:2d:9d:56:
b9:4e:a1:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 03:39:22 2024 by rpki-client on console-ams.rpki-client.org